Listen to this Post
In openclaw versions up to 2026.2.1, the voice-call extension contains an authentication bypass vulnerability. The extension handles inbound calls and checks against an allowlist when `inboundPolicy` is set to `allowlist` or pairing. The check is implemented in extensions/voice-call/src/manager.ts. It normalizes caller IDs by processing the `from` value. If the caller ID is missing or empty, it becomes an empty string after normalization. The allowlist predicate then evaluates this empty string as if it matches any entry, effectively allowing the call. Additionally, the matching logic uses suffix-based comparison. For example, if the allowlist includes “+15550001234”, any caller ID ending with these digits, such as “+99915550001234”, is considered a match. This means an attacker can craft caller IDs that end with allowlisted numbers to bypass restrictions. The vulnerability only affects deployments with the voice-call extension installed and configured with these policies. The proof of concept demonstrates that calls with missing caller IDs or suffix-based numbers are accepted. The fix in version 2026.2.2 introduces strict equality checks and rejects calls with missing caller IDs. This ensures that only exact matches are allowed and empty values are not permitted. The issue was reported by @simecek and patched in commit f8dfd034f5d9235c5485f492a9e4ccc114e97fdb. Deployments without the voice-call extension are not affected.
dailycve form:
Platform: openclaw npm
Version: <=2026.2.1
Vulnerability: Authentication Bypass
Severity: Critical
date: 2026-02-17
Prediction: 2026-02-18
What Undercode Say:
Analytics:
Check if voice-call extension installed npm list openclaw-voice-call Verify openclaw version npm list openclaw Inspect inbound policy config grep -r "inboundPolicy" /path/to/openclaw/config/
Exploit:
Simulate call with missing caller ID
curl -X POST http://target:port/call -H "Content-Type: application/json" -d '{"caller_id": ""}'
Simulate call with suffix-based number
curl -X POST http://target:port/call -H "Content-Type: application/json" -d '{"caller_id": "+99915550001234"}'
Protection from this CVE:
Update to patched version npm install [email protected] Update voice-call extension npm install openclaw-voice-call@latest Confirm update npm list openclaw | grep 2026.2.2 Restart services systemctl restart openclaw
Impact:
Unauthorized callers bypass inbound policies, accessing auto-response and tools. This risks information disclosure, service abuse, and further compromise. Critical for affected deployments with voice-call extension enabled.
🎯Let’s Practice Exploiting & Learn Patching For Free:
Sources:
Reported By: github.com
Extra Source Hub:
Undercode

